ICMP

MS08-001 – The case of the Moderate, Important, and Critical network vulnerabilities

Security Research & Defense / By swiat / January 8, 2008 June 20, 2019

Security bulletin MS08-001 addresses vulnerabilities described by two separate CVE numbers, as you can see in the bulletin. This post provides an overview of the two issues, the affected platforms and notes on the severity. We’ll be following this post up with two further entries that look at each issue in more detail. CVE-2007-0066 describes …

MS08-001 – The case of the Moderate, Important, and Critical network vulnerabilities Read More »

MS08-001 (part 2) – The case of the Moderate ICMP mitigations

Security Research & Defense / By swiat / January 8, 2008 June 20, 2019

This is the second post in the three-part series covering MS08-001. In this post we’ll look at the ICMP vulnerability (CVE-2007-0066) in more detail. This vulnerability is caused by Windows TCP/IP’s handling of the ICMP protocol, specifically regarding router advertisement messages. This post covers the mitigating factors for this vulnerability in more detail. Technical description …

MS08-001 (part 2) – The case of the Moderate ICMP mitigations Read More »